SymbOS/Cabir.M@mm - Released Nov 30, 2006
|
Detection Availability
|
| . |
Visible SymptomsIt is a Symbian virus, packed in .SIS format.
When install,it will pretend it to be NortonAntivirus software. |
Detailed AnalysisExtracts the following files:
C:\system\RECOGS\navrecog.mdl
C:\SYSTEM\SYMANTEC\NORTONANTIVIRUS\SPOOKY.APP
C:\SYSTEM\SYMANTEC\NORTONANTIVIRUS\SPOOKY.RSC
C:\SYSTEM\SYMANTEC\NORTONANTIVIRUS\SPOOKY.MBM
C:\SYSTEM\RECOGS\NAVRECOG.MDL
C:\SYSTEM\SYMANTEC\NORTONANTIVIRUS\INBOX.SIS
Attempts to send itself to other Bluetooth-enabled devices that it finds.
|
Recommended Action. |
